124 matches found
CVE-2023-6207 vulnerabilities
Vulnerabilities for packages: firefox-esr...
CVE-2026-6207
This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
CVE-2026-6207
...
TencentOS Server 2: thunderbird (TSSA-2023:0315)
The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0315 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities...
CVE-2025-6207
The WP Import Export Lite plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'wpietempalteimport' function in all versions up to, and including, 3.9.28. This makes it possible for authenticated attackers, with Subscriber-level access and above,...
CVE-2025-6207
creationtimestamp| type| source ---|---|--- 2025-08-05 07:53:52+00:00| seen| Telegram/6YLPjfZdB-8KAiKKylTFKP-kV52JylfcxVI-O79bUyVUJag...
CVE-2025-6207 WP Import Export Lite <= 3.9.28 - Authenticated (Subscriber+) Arbitrary File Upload
The WP Import Export Lite plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'wpietempalteimport' function in all versions up to, and including, 3.9.28. This makes it possible for authenticated attackers, with Subscriber-level access and above,...
CVE-2025-6207
The WP Import Export Lite plugin for WordPress is affected by an arbitrary file upload vulnerability caused by missing file type validation in the wpie_tempalte_import function, affecting all versions up to and including 3.9.28. Authenticated users with Subscriber-level access or higher, and with...
WordPress WP Import Export Lite plugin <= 3.9.28 - Authenticated (Subscriber+) Arbitrary File Upload vulnerability
Authenticated Subscriber+ Arbitrary File Upload vulnerability discovered by Vincent Fourcade vinceMatsui in WordPress Plugin WP Import Export Lite versions = 3.9.28...
TencentOS Server 3: firefox (TSSA-2023:0308)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0308 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
TencentOS Server 3: thunderbird (TSSA-2023:0307)
The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2023:0307 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...
CVE-2019-6207
An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout...
CVE-2020-6207
SAP Solution Manager User Experience Monitoring, version- 7.2, due to Missing Authentication Check does not perform any authentication for a service resulting in complete compromise of all SMDAgents connected to the Solution Manager...
Rockwell Automation ControlLogix Improper Input Validation (CVE-2024-6207)
A denial-of-service vulnerability exists in the affected products that will cause the device to result in a major nonrecoverable fault MNRF when it receives an invalid CIP request. To exploit this vulnerability a malicious user must chain this exploits with CVE-2021-22681 and send a specially...
CVE-2024-6207
CVE-2024-6207 affects Rockwell Automation ControlLogix/CompactLogix families (ControlLogix 5580 and 5580 Process; GuardLogix 5580; CompactLogix 5380 and Compact GuardLogix 5380 SIL 2/3; CompactLogix 5480; FactoryTalk Logix Echo). Root cause: improper input validation in CIP Message Handler, explo...
CVE-2024-6207
creationtimestamp| type| source ---|---|--- 2024-10-10 12:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-24-284-20 2024-10-15 00:12:37+00:00| seen| https://t.me/cvedetector/7862...
SAP Solution Manager Remote Unauthorized OS Commands Execution
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SAP Solution Manager remote unauthorized OS commands execution', 'License' = MSFLICENSE, 'Author' = 'Yvan Genuer', @1ggy The researcher who...
openSUSE: Security Advisory for MozillaThunderbird (SUSE-SU-2023:4588-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE: Security Advisory for MozillaFirefox (SUSE-SU-2023:4928-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
MAL-2024-735 Malicious code in wlwz-2312-6207 (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware d35ae60a8c54a6708bdee772b12fabaa60f153bcc49f9a58e8ba53083b894fcd Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...